Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XQIiGX4ats1-0kgpCCp8rsKMlXE.roa
File: XQIiGX4ats1-0kgpCCp8rsKMlXE.roa (raw, json)
Hash identifier: sjLxy3F1hi5bZWKP+ukTbiBzctgx790tOYN4FtLfA+U=
Subject key identifier: 5D:02:22:19:7E:1A:B6:CD:7E:D2:48:29:08:2A:7C:AE:C2:8C:95:71
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BD8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XQIiGX4ats1-0kgpCCp8rsKMlXE.roa
Signing time: Wed 29 Sep 2021 02:38:45 +0000
ROA not before: Wed 29 Sep 2021 02:38:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5D0222197E1AB6CD7ED24829082A7CAEC28C9571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fb:57:77:0a:cb:ff:a2:74:4e:72:b3:15:54:
12:22:0f:c6:08:22:d7:b5:89:40:9b:dc:6b:3a:00:
b4:c4:59:2b:6f:13:c3:2f:95:56:01:6e:39:10:68:
8e:62:a0:cd:06:51:0e:12:44:27:9e:65:fa:36:6c:
a0:fe:bf:8e:3f:20:0e:60:be:0d:cf:4b:46:5b:61:
64:01:81:a4:a6:b6:45:00:6c:cc:9a:5e:98:f8:b7:
8c:be:ea:98:97:38:6f:ae:7e:7f:13:fa:2f:fc:3c:
1a:aa:99:b1:6e:38:32:7a:51:d5:a9:89:96:65:c2:
df:03:a4:c1:e0:7f:ba:a5:d8:ad:7b:6e:22:72:97:
32:ad:97:ed:76:b6:89:9a:b7:48:a0:5a:a2:f3:84:
62:33:3c:7e:b8:ba:d6:99:c8:db:d3:8c:3c:73:f0:
94:63:e9:a4:71:6e:ee:76:0c:74:27:26:a5:a5:4b:
00:8b:e4:1b:3b:bd:50:26:c7:35:a6:40:f4:c3:5f:
b8:dd:4b:06:a3:61:85:8c:31:f0:83:99:b1:0b:c4:
b6:77:bb:95:47:da:9b:0d:e8:a7:5e:ed:c1:14:50:
55:81:a8:eb:c4:b1:a9:29:5d:42:b7:c5:b8:50:d7:
27:26:49:25:18:e4:46:06:9d:25:7d:d7:2d:ca:e7:
98:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:02:22:19:7E:1A:B6:CD:7E:D2:48:29:08:2A:7C:AE:C2:8C:95:71
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XQIiGX4ats1-0kgpCCp8rsKMlXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.232.0/21
Signature Algorithm: sha256WithRSAEncryption
22:80:0c:42:ef:dd:7b:ce:33:d9:10:fc:1e:6d:89:83:d6:38:
2e:9c:2a:6e:fb:df:32:63:33:db:d0:2c:f2:af:48:3c:3a:26:
3f:c6:de:54:34:51:af:39:a1:68:e6:63:05:e4:5c:31:b3:8c:
4d:45:54:df:3b:87:32:27:df:f6:bc:1d:8f:e9:e6:f5:32:74:
91:f8:5c:4b:42:22:02:3c:8a:4c:b3:75:55:c3:d6:c2:48:22:
3d:ee:28:81:66:f3:38:9b:d2:f6:bc:d6:2f:fc:3c:9c:13:60:
af:68:46:9c:45:20:e1:b8:5d:3b:2a:d0:67:60:fd:a4:2b:d9:
63:70:13:ab:b3:c4:f6:18:09:f9:2e:f0:62:38:0c:26:a0:48:
96:ff:b9:da:61:e2:23:99:b0:c9:fd:af:58:be:4f:63:ea:8c:
b4:06:e3:5f:01:c5:c2:0f:5f:ac:0b:32:a0:2d:da:dd:10:c5:
8d:b3:dc:cc:19:33:90:88:18:10:ae:12:dc:77:0d:f6:43:2e:
c1:1a:6a:75:d3:43:e8:b8:12:ce:bd:6c:26:f6:d8:f3:2c:8b:
07:69:e6:1b:47:4d:3b:78:1f:9f:0b:b9:32:59:e6:4b:46:cc:
f7:54:b5:d6:31:ce:6c:68:ed:5c:66:bf:b6:7d:36:61:04:7d:
d4:b2:ab:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:03:18 2025 by rpki-client